Skip to main content

Arphp

1 CVEs product

Monthly

CVE-2022-28081 MEDIUM This Month

A reflected cross-site scripting (XSS) vulnerability in the component Query.php of arPHP v3.6.0 allows attackers to execute arbitrary web scripts. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS Arphp
NVD
CVSS 3.1
6.1
EPSS
0.5%
EPSS 1% CVSS 6.1
MEDIUM This Month

A reflected cross-site scripting (XSS) vulnerability in the component Query.php of arPHP v3.6.0 allows attackers to execute arbitrary web scripts. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS Arphp
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy